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DETAILED ACTION 



1. 



This is in response to Appeal Brief filed on 1 1/03/201 1. 



2. 



Claims 10, 12, 14, 17, 20-25, 27 and 28 are pending. 



EXAMINER'S AMENDMENT 



3. An examiner's amendment to the record appears below. Should the changes and/or 
additions be unacceptable to applicant, an amendment may be filed as provided by 37 CFR 
1.312. To ensure consideration of such an amendment, it MUST be submitted no later than the 
payment of the issue fee. 

Authorization for this examiner's amendment was given in a telephone interview with 
Eric P. Jensen, Reg. No.: 37,647 on 01/17/2012. 

Please cancel claims 27 & 28; and amend independent claims 10, 12 and 22 as follows, 

10. (Currently Amended) A method for maintaining secure network connections, 
the method comprising: 

duplicating, at a third network element, a security association associated with a 
secure network connection between a first network element and a second network 
element, wherein a lookup of the security association associated with the secure network 
connection is not dependent on any destination address; and 

in response to detecting failure of the second network element, replacing the 
second network element with the third network element in the secure network connection 
with the first network element, wherein the secure network connection between the first 
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network element and the third network element is based on the duplicated security 
association; and 

sending at least one secure message from the third network element to the first 
network element to notify the first network element that the secure network connection 
will be taken over by the third network element , the third network element 
communicating with the first network element without the third network element 
reestablishing another connection with the first network element . 

12. (Currently Amended) A method for maintaining secure network connections, 
the method comprising: 

configuring a plurality of security gateways such that a lookup of security 
associations is not dependent on any destination address; 

sharing a security association among the plurality of security gateways; 

a first of the security gateways detecting failure of a second of the security 
gateways involved in a secure network connection with a network device, wherein the 
secure network connection is associated with the security association; and 

in response to detecting the failure, the first security gateway sending a message 
to the network device that the first security gateway is taking over the secure network 
connection , the first security gateway communicating with the network device without 
the first security gateway reestablishing another secure connection with the network 
device . 

14. The first security server according to claim 22, wherein a lookup of security 
associations is not dependent on any destination address. 

17. The first security server according to claim 22, wherein communications between 
the mobile client and the first security server are based on a security architecture for the 
internet protocol (IPsec). 



20. 



The method of claim 10, further comprising: 
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during life of the secure network connection between the first and second network 
elements, the third network element receiving information relating to the security 
association of the secure network connection from the second network element. 

21. The method of claim 20, wherein the first network element is a mobile client, and 
the second and third network elements are security servers. 

22. (Currently Amended) A first security server comprising: 

a transceiver to receive information relating to at least one security association of 
a secure network connection between a mobile client and a second security server; and 
a processor module to: 

monitor operation of the second security server; 

in response to detecting failure of the second security server, send a 
message to the mobile client that the first security server is taking over the secure 
network connection; and 

communicate with the mobile client using the at least one security 
association over the secure network connection between the first security server 
and the mobile client without reestablishing a new connection with the mobile 
client . 

23. The method of claim 10, wherein the first network element is a mobile client, and 
the second and third network elements are security servers. 

24. The first security server of claim 22, wherein information relating to the at least 
one security association is duplicated at the first and second security servers. 

25. The method of claim 12, wherein sharing the security association comprises 
sharing an IPsec security association among the plurality of security gateways. 



27. (Cancelled). 
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28. (Cancelled). 

Allowable Subject Matter 
4. Claims 10, 12, 14, 17 and 20-25 are allowed. 

The claims are allowed in light of arguments filed on appeal brief and examiner's 
amendments shown above. The previously filed claim rejections have been withdrawn. The 
record is clear therefore no reason for allowance is necessary. 

Contact Information 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to AMARE F. TABOR whose telephone number is (571)270-3155. 
The examiner can normally be reached on Mon-Fri 8:00a.m. to 5:00p.m., EST. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, KAMBIZ ZAND can be reached on (571) 272-381 1. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 
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Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would 
like assistance from a USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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